Re: How to store a password encripted in a user defined table

Andrej Ricnik-Bay wrote:
> On 3/1/07, Eugenio Flores <eflores767003@yahoo.com.mx> wrote:
>> Hello, I wonder if somebody knows how to store passwords in a
>> column that is part of a user defined table.
> Assuming that your passwords are application specific use
> a sha1 or md5 algorithm (depending on how sensitive your data is)
> and store that in a varchar or char field.  When the user authenticates
> the password gets hashed in the app and compared against the
> stored hash.
> 

If you want the server to take care of it look at pgcrypto - you will 
find it in the contrib folder of the source distro.

This doesn't give you an encrypted data type (but you could set that up 
if you wish) it will give you functions that you can use. Of course that 
would mean they get sent through the client connection as clear text 
unless you are using an SSL client connection.



-- 

Shane Ambler
pgSQL@Sheeky.Biz

Get Sheeky @ http://Sheeky.Biz